Skip to content


There are different types of secrets. TLS secrets make it much easier to configure digital certificates for use within the cluster:

kubectl create secret tls my-tls-secret \
  --cert=path/to/cert/file \

We should be able to use that information to set up a self-signed certificate with our Kubernetes cluster. I like using XCa or omgwtfssl for this purpose.

Updating Secrets

  • Delete and recreate?
    • This went well.
  • Patch?

Self-Signed Certificates